WingNews logo WingNews
top | item 38527138

(no title)

anfragment | 2 years ago

Hello HN!

Having just posted the app to a couple of small subreddits before sleep and then waking up to being on the front page over here is quite an experience :) I was hoping to make a Show HN post after giving Zen a bit more polish, but I guess here we are.

Thanks for all the constructive feedback. I totally share your concerns about its security and likewise wouldn't use some unverified application trying to install a root CA on my system. For those wanting to audit the certificate generation and installation code, feel free to take a look at certmanager/get.go and certmanager/install_{platformname}.go. It is mostly self-contained and, I hope, easy to understand. The lack of any instructions on how to delete the certificate is an oversight on my part, and I'll be working on this. Regarding the binaries: all of them are built on GitHub's CI. I wish there was a way for users to verify this fact, but to my knowledge, there is no way to do that currently. You can run and build the app yourself using Wails (https://wails.io/docs/gettingstarted/installation). I'll be sure to add more instructions to the repo in the coming days.

As always, any feedback, help, and suggestions are much welcome.

discuss

order

hummingn3rd|2 years ago

Thank you for your work! If you are interested in users verifying your binaries, maybe sigstore could help you.

https://www.sigstore.dev/

PrimeMcFly|2 years ago

Are any well known projects using sigstore? It looks interesting.

mike_d|2 years ago

Thank you for starting this project. There is a bit of overall negativity in this thread from users who don't fully understand what is going on here, but please don't get discouraged. This is ultimately the correct approach to addressing browsers that have a financial interest in serving ads.

quyleanh|2 years ago

Thank you for your work. I appreciate it very much. Please don’t be down motivation by the negative comments.

About your comment of security, I think it’s better to make a FAQ file and write it there to clearly explain.

And one suggestion is I hope zen will have function to choose upstream DNS server (can be DoH or DoT server). It will be the best block ads with combo DNS and HTTPS.

dvfjsdhgfv|2 years ago

Thank you very much for your work! I really appreciate it. It seems a great solution in a situation where you can't use Pi-hole etc.